$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tLksLbHQWq8mrLGKiwwt8vAiR6A.roa File: tLksLbHQWq8mrLGKiwwt8vAiR6A.roa (raw, json) Hash identifier: +8ws1i8+qI+wKc7G2ckv4d7WUFW2mBZDgYAcs8gdYUI= Subject key identifier: B4:B9:2C:2D:B1:D0:5A:AF:26:AC:B1:8A:8B:0C:2D:F2:F0:22:47:A0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E72 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tLksLbHQWq8mrLGKiwwt8vAiR6A.roa Signing time: Tue 10 Jun 2025 10:53:32 +0000 ROA not before: Tue 10 Jun 2025 10:53:32 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 61.195.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Jun 2025 06:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3698 (0xe72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:53:32 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=B4B92C2DB1D05AAF26ACB18A8B0C2DF2F02247A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:90:a4:35:db:aa:2b:5a:fb:76:38:35:13:1f: 4a:7c:65:54:da:ee:50:0e:69:7d:f1:cf:d7:48:6c: 66:ad:31:e7:86:9a:83:ed:f6:38:82:7b:9f:d7:75: 81:83:52:28:8b:2f:c8:64:43:71:3e:0e:52:e6:21: f8:5d:46:db:b8:7c:38:98:ff:51:18:32:13:fb:44: 25:6b:ae:74:b3:53:ad:bb:a6:1c:58:41:dc:92:f5: a1:23:b2:b5:5e:73:f2:a0:7a:43:7b:7d:bc:b1:22: 62:ff:f0:88:a0:3b:5f:91:c9:82:75:01:bb:d2:23: af:f4:45:63:61:2b:61:09:07:d8:c4:2b:de:07:11: 1b:d1:c4:71:5f:37:35:46:d7:67:40:1f:e0:67:ee: 5e:fb:da:b1:55:74:7c:6c:6d:57:c1:48:e3:a6:58: f6:0b:41:34:f4:b6:f0:ec:6d:b7:2a:51:12:b7:ea: dd:0e:54:a8:79:83:64:40:a6:41:d1:05:48:37:92: 3a:eb:8f:80:40:33:13:e9:4d:c4:f4:51:11:09:f9: 0c:89:56:e7:c6:36:d5:34:99:af:8b:a9:20:bd:4f: 85:ed:a1:97:4b:41:c8:73:a3:af:90:71:db:45:67: 04:e3:67:9d:9e:4d:88:66:dd:57:17:31:21:50:0e: 87:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B9:2C:2D:B1:D0:5A:AF:26:AC:B1:8A:8B:0C:2D:F2:F0:22:47:A0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tLksLbHQWq8mrLGKiwwt8vAiR6A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.195.208.0/22 Signature Algorithm: sha256WithRSAEncryption 51:92:44:4c:5d:54:38:3a:54:a8:f7:03:4c:3b:9e:c1:88:51: 65:8f:f4:a8:09:6b:3d:d2:f5:9f:b0:f8:88:ff:97:17:d3:c0: 08:0f:09:12:96:89:d2:db:cc:86:94:bf:ab:0d:32:91:37:b3: 75:33:53:c6:63:93:eb:e7:52:32:5e:b8:35:ee:d7:0c:18:76: 0a:b9:f1:84:f4:f5:64:40:3d:9d:06:24:9d:d5:0b:d4:28:8c: 69:fc:58:bd:cf:7f:72:ae:3e:6a:e0:66:9e:6b:88:73:57:ef: 41:92:df:f3:c6:4f:36:d7:79:26:9f:53:4d:9c:b2:f7:61:72: 8e:fd:76:9f:da:02:c5:fe:f8:95:46:cc:6a:d0:b4:c1:da:3c: 89:c6:4b:7a:7d:56:65:35:d4:73:12:ab:5a:4d:96:05:d4:f9: 61:72:1d:2b:9e:c4:f3:f1:d7:1f:7b:36:93:92:c9:5b:b7:5b: a0:af:1e:9f:5d:fe:80:5c:98:4e:6a:1d:28:b6:fa:f2:dd:98: 57:14:b2:6f:53:a1:da:ce:c8:bf:39:f8:51:33:47:b0:b4:db: 2e:0d:22:31:c0:3b:ba:57:5d:01:fa:89:81:71:3a:6c:b9:bd: dd:46:f0:6b:1f:b1:9f:26:fb:64:f0:1f:6b:f6:b9:90:15:66: 16:bf:43:f3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDnIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDUzMzJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEI0QjkyQzJEQjFEMDVB QUYyNkFDQjE4QThCMEMyREYyRjAyMjQ3QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzkKQ126orWvt2ODUTH0p8ZVTa7lAOaX3xz9dIbGatMeeGmoPt 9jiCe5/XdYGDUiiLL8hkQ3E+DlLmIfhdRtu4fDiY/1EYMhP7RCVrrnSzU627phxY QdyS9aEjsrVec/KgekN7fbyxImL/8IigO1+RyYJ1AbvSI6/0RWNhK2EJB9jEK94H ERvRxHFfNzVG12dAH+Bn7l772rFVdHxsbVfBSOOmWPYLQTT0tvDsbbcqURK36t0O VKh5g2RApkHRBUg3kjrrj4BAMxPpTcT0UREJ+QyJVufGNtU0ma+LqSC9T4XtoZdL Qchzo6+QcdtFZwTjZ52eTYhm3VcXMSFQDodNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtLksLbHQWq8mrLGKiwwt8vAiR6AwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3RMa3NMYkhRV3E4bXJMR0tpd3d0OHZBaVI2QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI9w9AwDQYJKoZIhvcNAQELBQADggEBAFGSRExdVDg6VKj3A0w7nsGIUWWP 9KgJaz3S9Z+w+Ij/lxfTwAgPCRKWidLbzIaUv6sNMpE3s3UzU8Zjk+vnUjJeuDXu 1wwYdgq58YT09WRAPZ0GJJ3VC9QojGn8WL3Pf3KuPmrgZp5riHNX70GS3/PGTzbX eSafU02csvdhco79dp/aAsX++JVGzGrQtMHaPInGS3p9VmU11HMSq1pNlgXU+WFy HSuexPPx1x97NpOSyVu3W6CvHp9d/oBcmE5qHSi2+vLdmFcUsm9TodrOyL85+FEz R7C02y4NIjHAO7pXXQH6iYFxOmy5vd1G8GsfsZ8m+2TwH2v2uZAVZha/Q/M= -----END CERTIFICATE-----Generated at Mon Jun 23 09:39:12 2025 by rpki-client